We are concluding Domain I: Purpose of Internal Auditing. First, let's summarize the key differences between assurance and advisory services based on our previous MCQs:
Scope Determination: In assurance, the auditor decides; in advisory, the auditor and client agree together.
Parties Involved: Assurance is a three-party relationship (auditor, auditee, user), while advisory involves only two parties (auditor and client).
Let’s look at a practical MCQ from Zain Academy’s CIA Part 1 (2026):
MCQ 1752 (p. 3558): Which of the following is an example of an advisory engagement?
A. The internal audit function is asked to verify that the organization adheres to policy requirements.
B. The director engages internal audit to review and recommend improvements for cash controls at an offsite location.
C. The board requests an opinion on management’s claim that a segment was profitable in Q1.
D. The CAE is asked by the board to evaluate the effectiveness of operations.
Correct answer: B. Explanation: Reviewing and recommending improvements for controls is an advisory service because it focuses on providing guidance without assuming management responsibilities or providing formal assurance.
Option A is a compliance audit (Assurance).
Option C is a financial audit/opinion (Assurance).
Option D is an operational audit (Assurance).
Since I have some characters left, I would like to call your attention to something. Keep in mind, the question can be worded differently.
Watch out for the "Negative Question" trap! MCQs can be tricky. A common "trap" format is:
"The internal audit function provides assurance services, including the following examples, except:"
In these cases, the "wrong" answer is the correct one. Exam-takers often see "assurance service," and jump to Option A right away, and lose points by not noticing the exception. Always read the full question, and find key words!
